DuckDNS had been unreliable when I used it, but it’s been a while. I swapped over to desec.io but their signups aren’t always open. Can highly recommend them though, and they offer many paths to update the IP, including DynDNS(2) protocol or just ddclient.

Also works with certbot for Let’s encrypt certificates using dns challenge.

Never run something like Vaultwarden with unencrypted traffic. Throwing in a self signed cert is basically free insurance. You never know when even in your “trusted network” something starts listening in. Just why risk it?

It’s also in the article, which is actually a pretty good read. The short version is is very hard to make heat go anywhere, and you can only radiate it away, which is slow and inefficient compared to even basic air cooling.

The signs below the speed limit (probably, cause pixels) say “bei Nässe”, which means “only when wet”. So assuming this is an Autobahn, and it does look like one, it’s probably fine.